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IN THE CLAIMS ; 

Please consider the claims as follows: 

1. (currently amended) Apparatus, comprising: 

a plurality of internet protocol (IP) services aggregation switches for 
communicating between respective access networks and a core network, each of 
said IP services aggregation switches communicating with at least one 
respective VPN customer use r, wherein said IP sftrvices aaareQation switches 
communicate with said a t least one VPN customer user via at least one 
enhanced i ntegrated access device (E\AD] : and 

a dynamic virtual private network (VPN) manager, for providing customer 
network management and policy server functions, including a user interface 
enabling remote management of a VPN by a VPN customer user; 

said VPN having at least one of a defined quality of service (QoS) 
parameter, a defined security parameter and a corresponding billing rate, at least 
one of said QoS parameter and said security parameter being adapted in 
response to user commands provided to said dynamic VPN manager by said 
VPN customer user; 

said dynamic VPN manager adapting at least one of said IP sBn/inaa 
aQQreoatlon s witches and at least one of said ElADs to provide a bidlrectionai 
QoS for at least one IP flow 

2. (original) The apparatus of daim 1 . wherein: 

said dynamic VPN manager adapts at least one of said IP services 
aggregation switches to provide at least one of a guaranteed QoS parameter and 
a guaranteed security parameter to said VPN. 

3. (cancelled) 

4. (original) The apparatus of claim 1 , wherein: 
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said dynamic VPN manager adapts at least one of said enhanced 
integrated access devices (EIAD) to provide at least one of a guaranteed QoS 
parameter and a guaranteed security parameter to said VPN. 

5. • (original) The apparatus of claim 1 , wherein said QoS parameter 
comprises at least one of a bandwidth parameter, a jitter parameter and a delay 
parameter. 

6. (original) The apparatus of claim 1 , wherein said security parameter 
comprises at least one of an encryption parameter, an authentication parameter 
and a filtering parameter. 

7. (original) The apparatus of claim 1 , wherein said VPN supports at least 
one of an interactive gaming applicatiori and a conferencing application. 

8. (previously presented) The apparatus of claim 1 , wherein; 

said dynamic VPN manager Is responsive to a user command to establish 
an application profile for a VPN, said application profile defining at least one of a 
QoS parameter, a security parameter and a corresponding billing rate for said 
VPN during at least one time period;" 

said dynamic VPN manager adapting said at least one of a QoS 
parameter and a security parameter of said VPN according to said application 
profile. 

9. (previously presented) The apparatus of claim 1 , wherein a command 
received from the VPN customer user comprises a user selection of one of a 
plurality of VPNs to join. 

10. (previously presented) The apparatus of claim 1 , wherein a command 
received from the VPN customer user comprises a user selection of one of a 
plurality of applications based on VPNs to join. 
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11. (original) The apparatus of claim 9, wlierein said plurality of VPNs have at 
least one of respective QoS requirements and security requirements, said QoS 
and security requirements having corresponding billing rates. 

12. (original) The apparatus of claim 10, wherein said plurality of applications 
have at least one of respective QoS requirements and security requirements, 
said QoS and security requirements having corresponding billing rates. 

13. (previously presented) The apparatus of claim 1 , wherein said dynamic 
VPN manager comprises: 

an enhanced application portal (EAP), for providing said user interface to 
said VPN customer user and receiving therefrom VPN administration commands 
adapted to configure said VPN; 

a policy server, for communicating configuration parameters to network 
elements providing said VPN, said network configuration parameters determined 
according to VPN administration commands and profiles associated with said 
VPN administration commands; and 

a directory server, for storing VPN topology and operational parameters 
and providing said VPN topology and operational parameters to said policy 
server and said EAP, said VPN topology and operational parameters adapted for 
being updated by said VPN customer user via said EAP. 

14. (original) The apparatus of claim 13, wherein said dynamic VPN manager 
further comprises: 

at least one element management system (EMS) for managing a plurality 
of network elements forming said VPN. 

15. (original) The apparatus of claim 1 , wherein said apparatus is Included 
within an internet service provider (ISP) network including said access networks 
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and said core network, said dynamic VPN manager being included within a data 
center of said ISP. 

1 6. (previously presented) The apparatus of claim 1 , wherein said VPN has 
associated with it a respective name; 

said VPN customer user being able to perform at least one of a VPN 
create, VPN modify, VPN store and VPN delete, command using said VPN 
name; 

said VPN modify command allows said VPN customer user to modify at 
least one of said VPN's topology, QoS parameter, and security parameter. 

1 7. (original) The apparatus of claim 16, wherein said VPN is retrieved from 
storage, activated and deactivated using a corresponding VPN name. 

1 8. (currently amended) A dynamic virtual private network (VPN) manager, 
comprising: 

an enhanced application portal (EAP), for providing a user interface to a 
VPN customer user, and receiving therefrom VPN administration commands 
adapted to configure a VPN; 

a policy server, for communicating configuration parameters to network 
elements providing said VPN, said network elements comprising a plurality of 
intemet protocol (IP^ ser vices aaareqation switches for communicating between 
respective access networks and a core network and a pluraiitv of enhanced 
integrated ac cess devices fEIADs) for communicating between VPN customer 
users and access networks, said network configuration parameters determined 
according to VPN administration commands and pTC)files associated with said 
VPN administration commands; and 

a directory server, for storing VPN topology and operational parameters 
and providing said VPN topology and operational parameters to said policy 
server and said EAP, said VPN topology and operational parameters adapted for 
being updated by said VPN customer user via said EAP; 
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gaid dynamic VPN manager adaptinn at l east one of said IP services 
aggregation switches and at la ast one of said ElADs to nmyide a bidirentinnal 
QoS for at least one IP flow . 

1 9. (original) The dynannic VPN manager of claim 1 8. further comprising: 

at least one element management system (EMS) for managing a plurality 
of network elements forming said VPN. 

20. (original) The dynamic VPN manager of claim 1 8, wherein a managed 
VPN has associated with It at least one of a defined quality of service (QoS) 
parameter, a defined security parameter and con-esponding billing rate, at least 
one of said QoS parameter and said security parameter being adapted In 
response to said VPN administration commands. 

21 . (original) The dynamic VPN manager of claim 1 8, wherein: 

said dynamic VPN manager Is Included within a Universal Mobile 
Telecommunications Services (UMTS) packet transport networi<. said access 
networks comprising Gateway Generalized Packet Radio Service support nodes 
(GGSNs), said user accessing said UMTS packet transport network with a 
communications device nominally assigned to a home GGSN; 

said dynamic VPN manager causing communications with said user 
communication device to be routed through a GGSN geographically proximate 
said user communications device. 

22. (original) The dynamic VPN manager of claim 21 , wherein said 
determination of geographic location is made during an authentication procedure. 

23. (original) The dynamic VPN manager of claim 1 8, wherein: 

said apparatus is included within a CDMA'2000 packet transport network, 
said access networks comprising home agents, said user accessing said CDMA- 
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2000 packet transport network with a communications device nominally assigned 
to a home agent; 

said dynamic VPN manager causing communications with said user 
communication device to be routed through a home agent geographically 
proximate said user communications device. 

24. (original) The apparatus of claim 23, wherein said determination of 
geographic location is made during an authentication procedure. 

25. (currently amended) A method, comprising: 

receiving, from an authorized VPN customer user, a request to modify a 
parameter of a virtual private network (VPN) provided in a network comDrisino a 
plurality of internet protocol (IP) service s aaareQation switches for communicating 
between respective acc ess networks and a core network and a pluralitv of 
enhanced integrated acces s devices fEIADs) for communicating between said 
VPN custo mer user and said access networks: 

retrieving a profile associated with said user request; and 
providing configuration parameters to at least one network olomont of said 
JP services aoareaation switches and at least one of said ElADs in response to 
said user request and said profile associated with said user request, said network 
etement at least one of st ild IP services aoareoation switches and at least one of 
said ElADs adapted by said configuration parameter to satisfy said parameter of 
said VPN, said parameter o f said VPN comprisino a bidirectional QoS for at least 
one IP flow . 

. 26. (original) The method of claim 25, wherein said user request is received 
via an enhanced application portal. 

27. (original) The method of claim 25, wherein said parameter to be modified 
comprises a quality of service (QoS) parameter, said QoS parameter adapting a 
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data flow through a network such that a minimum QoS level is guaranteed to at 
least a portion of said VPN traversing said network. 

28. (original) The method of claim 25, wherein: 

said parameter to be modified comprises a security parameter, said 
security parameter adapting a data flow through a network such that a minimum 
security level is guaranteed to at least a portion of said VPN traversing said 
network. 

29. (original) The method of claim 27, wherein said QoS parameter comprises 
at least one of a bandwidth parameter, a jitter parameter, a delay parameter. 

30. (original) The method of claim 28, wherein said security parameter 
comprises at least one of an encryption parameter, an authentication parameter 
and a filtering parameter. 

31 . (original) The method of claim 21 , wherein said VPN supports at least one 
application having associated with it at least one of respective QoS requirements 
and security requirements, said QoS and security requirements having 
corresponding billing rates. 

32. (original) The method of claim 31 , wherein said application comprises at 
least one of an interactive gaming application and a conferencing application. 

33. (previously presented) The method of claim 27, wherein said VPN has 
associated with It a respective name; 

said VPN customer user being able to perform at least one of a VPN 
create, VPN modify, VPN store and VPN delete command using said VPN name; 

said VPN modify command allows said VPN customer user to modify at 
least one of said VPN's topology, QoS parameter, and security parameter. 
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34. (original) The method of claim 33, wherein said VPN is retrieved from 
storage, activated and deactivated using a corresponding VPN name. 

35. (cuH'ently amended) An application programming interface (API) for use 
by an application to perfomrj VPN management activities, said API performing the 
functions of: 

receiving, from an authorized VPN customer user, a request to activate, 
deactivate, je^ n. l o ovo or modify a parameter of a virtual private network (VPN) 
provided in a network comprisinQ a oluralitv of internet protocol (\P) sfirvinPR 
aggregation switches for commu nicatino between res p active acf:e.ss networks 
and a core network and a pluralitv of enhanced integrated access devices 
(ElADs) for communicating between sai d VPN customer user and said access 
networks: 

retrieving a profile associated with said user request; and 
providing configuration parameters to at least one network olomont of said 
IP services aQoreaation s witches and at least one of said ElADs in response to 
said user request or said profile associated with said user request, said fieftwepk 
etemerrt at least one of .gal d IP services aggregation switches and at least one of 
said ^lAPs adapted by said configuration parameter to satisfy said parameter of 
said VPN, said parameter of said VPN co mprising a bidirectional QoS for at least 
one IP flow . 

36. (original) The API of claim 35, wherein said application executes on an 
enhanced application portal. 
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